Paste a JSON Web Token to decode the header and payload instantly. See expiry, issuer, and all claims. Your token never leaves the browser.
Paste a JWT and see header, payload, and all claims decoded immediately. Auto-detects as you type.
See if the token is expired or still valid. Shows issued-at and expiration times in human-readable format.
Header in pink, payload in blue, signature in green. Instantly see the three JWT parts visually.
Algorithm, type, subject, issuer, issued-at, expiry — all standard claims extracted and displayed.
Pre-built examples including HS256, RS256, expired tokens, and tokens with roles and permissions.
Your tokens NEVER leave your browser. Safe for decoding production tokens with real user data.